Home » Netgear Manuals » Wireless » Netgear WG102 » Manual Viewer

Netgear WG102 WG102 Reference Manual - Page 96

WPA/WPA2 Authentication: Enterprise-level User Authentication via 802.1x/EAP and RADIUS

UPC - 606449037678

Add to My Manuals
Save this manual to your list of manuals

Page 96 highlights

Reference Manual for the NETGEAR ProSafe 802.11g Wireless Access Point WG102 WPA/WPA2 Authentication: Enterprise-level User Authentication via 802.1x/EAP and RADIUS Figure B-3: WPA/WPA2 Overview IEEE 802.1x offers an effective framework for authenticating and controlling user traffic to a protected network, as well as providing a vehicle for dynamically varying data encryption keys via EAP from a RADIUS server, for example. This framework enables using a central authentication server, which employs mutual authentication so that a rogue wireless user does not join the network. It is important to note that 802.1x does not provide the actual authentication mechanisms. When using 802.1x, the EAP type, such as Transport Layer Security (EAP-TLS), or EAP Tunneled Transport Layer Security (EAP-TTLS), defines how the authentication takes place. Note: For environments with a Remote Authentication Dial-In User Service (RADIUS) infrastructure, WPA supports Extensible Authentication Protocol (EAP). For environments without a RADIUS infrastructure, WPA supports the use of a pre-shared key. Together, these technologies provide a framework for strong user authentication. Windows XP implements 802.1x natively, and several NETGEAR switch and wireless access point products support 802.1x. B-12 202-10064-02, June 2005 Wireless Networking Basics

Section	Page
Chapter 1 About This Manual	13
Audience, Scope, Conventions, and Formats	13
How to Use This Manual	14
How to Print this Manual	14
Chapter 2 Introduction	15
About the NETGEAR WG102 ProSafe 802.11g Wireless Access Point	15
Key Features	16
802.11g Standards-based Wireless Networking	17
Autosensing Ethernet Connections with Auto Uplink	18
Wireless Multimedia (WMM) Support	18
Compatible and Related NETGEAR Products	18
System Requirements	18
What’s In the Box?	19
Hardware Description	19
Front Panel	20
Rear Panel	21
Chapter 3 Basic Installation and Configuration	23
Observing Placement and Range Guidelines	23
Cabling Requirements	24
Default Factory Settings	25
Understanding WG102 Wireless Security Options	26
Installing the WG102 Access Point	27
How to Log In to the WG102 Using Its Default IP Address	32
Using the Basic IP Settings Options	33
Understanding Wireless Settings	34
Understanding WEP/WPA Security Options	37
Before You Change the SSID and WEP Settings	39
How to Set Up and Test Basic Wireless Connectivity	40
How to Restrict Wireless Access by MAC Address	41
How to Configure WEP	42
How to Configure WPA with Radius	44
How to Configure WPA-PSK	47
How to Configure WPA2 with Radius	48
How to Configure WPA2-PSK	50
How to Configure WPA and WPA2	51
How to Configure WPA2-PSK and WPA2-PSK	54
Chapter 4 Management	57
Using Syslog and Activity Log Information	57
Viewing General and Statistical Information	58
Statistics	60
Viewing a List of Attached Devices	61
Upgrading the Wireless Access Point Software	61
Configuration File Management	62
Saving and Retrieving the Configuration	63
Restoring the WG102 to the Factory Default Settings	63
Using the Reset Button to Restore Factory Default Settings	63
Changing the Administrator Password	64
Using SNMP Remote Management	65
Chapter 5 Advanced Configuration	67
Hotspot Settings	67
Understanding Advanced Wireless Settings	67
AutoCell RF Management	68
Configuration	69
Auto RF Management	69
Enhanced RF Security	69
AutoCell AP/Client Interaction	70
Additional AutoCell View Management Options	70
Configuring Advanced Wireless Settings	71
AP Settings: Enabling Wireless Bridging and Repeating	73
How to Configure a WG102 as a Point-to-Point Bridge	75
How to Configure Multi-Point Wireless Bridging	76
How to Configure Wireless Repeating	77
Chapter 6 Troubleshooting	79
No lights are lit on the access point.	79
The Wireless LAN activity light does not light up.	80
The LAN light is not lit.	80
I cannot access the Internet or the LAN with a wireless capable computer.	80
I cannot connect to the WG102 to configure it.	81
When I enter a URL or IP address I get a timeout error.	81
Using the Reset Button to Restore Factory Default Settings	82
Appendix A Specifications	83
Specifications for the WG102	83
Appendix B Wireless Networking Basics	85
Wireless Networking Overview	85
Infrastructure Mode	85
Ad Hoc Mode (Peer-to-Peer Workgroup)	86
Network Name: Extended Service Set Identification (ESSID)	86
Authentication and WEP Data Encryption	86
802.11 Authentication	87
Open System Authentication	87
Shared Key Authentication	88
Overview of WEP Parameters	89
Key Size	90
WEP Configuration Options	91
Wireless Channels	91
WPA and WPA2 Wireless Security	92
How Does WPA Compare to WEP?	93
How Does WPA Compare to WPA2 (IEEE 802.11i)?	94
What are the Key Features of WPA and WPA2 Security?	94
WPA/WPA2 Authentication: Enterprise-level User Authentication via 802.1x/EAP and RADIUS	96
WPA/WPA2 Data Encryption Key Management	98
Temporal Key Integrity Protocol (TKIP)	98
Michael	99
AES Support for WPA2	99
Is WPA/WPA2 Perfect?	99
Product Support for WPA/WPA2	100
Supporting a Mixture of WPA, WPA2, and WEP Wireless Clients is Discouraged	100
Changes to Wireless Access Points	101
Changes to Wireless Network Adapters	101
Changes to Wireless Client Programs	102

Match case Limit results 1 per page

Reference Manual for the NETGEAR ProSafe 802.11g Wireless Access Point WG102

B-12

Wireless Networking Basics

202-10064-02, June 2005

WPA/WPA2 Authentication: Enterprise-level User

Authentication via 802.1x/EAP and RADIUS

Figure B-3:

WPA/WPA2 Overview

IEEE 802.1x offers an effective framework for authenticating and controlling user traffic to a

protected network, as well as providing a vehicle for dynamically varying data encryption keys via

EAP from a RADIUS server, for example. This framework enables using a central authentication

server, which employs mutual authentication so that a rogue wireless user does not join the

network.

It is important to note that 802.1x does not provide the actual authentication mechanisms. When

using 802.1x, the EAP type, such as Transport Layer Security (EAP-TLS), or EAP Tunneled

Transport Layer Security (EAP-TTLS), defines how the authentication takes place.

Note

: For environments with a Remote Authentication Dial-In User Service (RADIUS)

infrastructure, WPA supports Extensible Authentication Protocol (EAP). For environments

without a RADIUS infrastructure, WPA supports the use of a pre-shared key.

Together, these technologies provide a framework for strong user authentication.

Windows XP implements 802.1x natively, and several NETGEAR switch and wireless access

point products support 802.1x.